Privacy Policy — QR Stealth

Effective Date: March 15, 2026 — Last Updated: March 15, 2026

    The short version: QR Stealth generates QR codes entirely in your browser. We do not collect, store, transmit, or process any of the content you enter into the generator. Your QR data never leaves your device. The only exception is the optional address search in the Location tab, which uses OpenStreetMap's Nominatim geocoding service to convert addresses to coordinates.
  

1. Who We Are

QR Stealth ("we," "us," "our") is a free, browser-based QR code generator operated as a web application. Our website allows users to create customized QR codes without creating an account or providing personal information.

QR Stealth is operated as a sole proprietorship. For privacy inquiries, contact us at [email protected].

2. Data We Do NOT Collect

Unlike most QR code generators, QR Stealth operates entirely client-side. This means:

No content data: The URLs, text, email addresses, phone numbers, WiFi credentials, vCard information, or any other content you enter into the generator is processed exclusively in your web browser. It is never sent to our servers or any third-party server.
No account data: We do not require or offer user accounts. We do not collect names, email addresses, passwords, or any other registration information.
No QR code storage: Generated QR codes are not stored, cached, or logged anywhere outside your browser. Once you close the page, the QR code exists only if you downloaded it.
No uploaded images: Logos you upload for embedding in QR codes are processed locally in your browser and are never transmitted to any server.

3. Data We May Collect

While the QR code generator itself collects zero user data, the following limited data may be collected through third-party services integrated into the website:

3.1 Analytics (Google Analytics)

We may use Google Analytics to understand general website traffic patterns. This may collect:

Pages visited and time spent on pages
Referring website or search terms
General geographic region (country/city level, not precise location)
Device type, browser type, and operating system
Anonymized IP address (IP anonymization is enabled)

This data is aggregated and anonymized. It cannot be used to identify individual users. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.

3.2 Advertising (Google AdSense or similar)

We display advertisements on the site to support the free service. Our advertising partners may use cookies or similar technologies to serve relevant ads. These partners may collect:

Cookie identifiers
General browsing activity across websites (for interest-based advertising)
Device and browser information

You can manage your ad personalization preferences at Google Ads Settings or opt out of personalized advertising through the Digital Advertising Alliance.

Our lawful basis for processing analytics and advertising data is your explicit consent, obtained through our cookie consent banner before any such data is collected (GDPR Article 6(1)(a)). You may withdraw consent at any time through the "Manage Cookie Preferences" link in our footer.

Google Analytics data is retained for 14 months. Google AdSense cookie data follows Google's standard retention policies. localStorage data persists until you clear your browser data.

3.3 Local Storage

We use your browser's localStorage to save your theme preference (light/dark mode). This data:

Is stored only on your device
Is never transmitted to any server
Can be cleared by clearing your browser data
Contains no personal information. The following keys may be stored:
- qr-theme: stores "light" or "dark" (your theme preference)
- qr-cookie-consent: stores your cookie consent choices and expiry timestamp
- qr-lang: stores your preferred language code (e.g., "en", "es", "fr")

4. Cookies

QR Stealth itself does not set any cookies. However, third-party services (analytics and advertising) may set cookies as described in Section 3. A cookie consent banner is displayed on your first visit, allowing you to accept or reject non-essential cookies before they are loaded. You can manage your preferences at any time via the "Manage Cookie Preferences" link in the footer. For a detailed breakdown of every cookie, see our Cookie Policy.

5. Third-Party Services

The following third-party services may be integrated into QR Stealth:

Google Analytics: Website traffic analysis. Google Privacy Policy
Google AdSense: Display advertising. Google Ads Privacy
jsDelivr CDN: Serves the open-source QR code generation library. jsDelivr Privacy Policy
Google Fonts: Serves web fonts. Google Fonts Privacy
OpenStreetMap Nominatim: If you use the address search feature in the Location tab, your search query is sent to OpenStreetMap's Nominatim geocoding service to convert addresses to coordinates. OpenStreetMap Privacy Policy

We do not sell, rent, or share any data with third parties beyond the services listed above.

Google Analytics and Google AdSense may process data on servers located outside your country of residence, including the United States. These transfers are governed by Google's data processing terms, which include Standard Contractual Clauses approved by the European Commission. For more information, see Google's Privacy Policy.

6. Data Security

Because QR code generation happens entirely in your browser, there is no server-side database of your QR content that could be compromised. The security of your generated QR codes depends on the security of your own device and browser.

7. Children's Privacy

QR Stealth is not directed at children under 13. We do not knowingly collect personal information from children. Our AdSense configuration is set to exclude child-directed treatment. If you believe a child under 13 has provided us with personal information, please contact us at [email protected] so we can take appropriate action.

8. International Users

QR Stealth is designed to comply with privacy regulations globally, including:

GDPR (EU/EEA): We process no personal data through the QR generator. Third-party cookies from analytics/ads are subject to those providers' GDPR compliance. You have the right to opt out of all third-party tracking as described above.
CCPA (California): We do not sell personal information. We do not collect personal information through the QR generator. We will not discriminate against you for exercising any of your privacy rights. You will not receive different pricing, quality of service, or access based on your privacy choices.
LGPD (Brazil), POPIA (South Africa), PIPEDA (Canada): The same zero-collection principle applies.

9. Your Rights

Depending on your jurisdiction, you may have the right to:

Access any personal data we hold about you (we hold none from the generator)
Request deletion of personal data (we store none from the generator)
Request rectification (correction) of inaccurate personal data
Request restriction of processing of your personal data
Request data portability (receive your data in a structured, machine-readable format)
Withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal
Object to processing based on legitimate interest
Lodge a complaint with your local data protection supervisory authority
Opt out of analytics tracking (see Section 3.1)
Opt out of personalized advertising (see Section 3.2)
Clear locally stored preferences (clear browser data)

10. Changes to This Policy

We will update the "Last Updated" date at the top of this policy when changes are made. Material changes will be communicated via a notice on our website. Your continued use after such notice constitutes acceptance of the updated policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at:

Contact Page

    Our commitment: Privacy is built into our architecture — QR generation is 100% client-side. We collect zero QR code data. Your generated content stays in your browser.
  